How do I setup OKTA as Identity Provider in Jenkins? Bee Bot July 13, 2022 11:15 Updated The content of this article has moved to the new documentation site. Related articles SAML Plugin Basics How can I purge/clean the build queue? How To Authenticate to AWS with the Pipeline AWS Plugin How to block access to URLs vulnerable to SECURITY-2469/CVE-2021-21678 How to Trigger Multibranch Jobs from Bitbucket Server? Comments 7 comments Sort by Date Votes James Gonzalez July 11, 2017 07:44 Very helpful thank you. However, the groups aren't being pulled into Jenkins. 0 Dave Johnson July 20, 2017 16:11 This is a very useful article and, after some fiddling around, was able to get this working, and with group support. Note: it is very important that the Okta setting "Audience URI (SP Entity ID)" match the Jenkins SAML Plugin's Advanced Setting named "SP Entity ID" and if they do not match you will get an error like this "org.pac4j.saml.exceptions.SamlException: No valid subject assertion found in response" 0 Atchut Gare July 24, 2018 02:29 If I am using "Anyone can do Anything" the login is not proper. I can even open if I am not an OKTA user. But if I select any other option in this section, the login page is going into an infinite loop. Please help me with this. 0 Gopi P August 03, 2018 18:57 Edited After creating Jenkins app in OKTA and configuring "SAML 2.0" in Jenkins accordingly. When i click on "login" in Jenkins UI; redirect between OKTA and JENKINS happen continuously and never showed the UI. Any info on this? Any other configs need to be done other than what ever mentioned on this page.James Gonzalez seems like this worked for you. Did you had to do extra configurations!!! 0 Gabsi Aymen September 17, 2018 15:29 Is there any possibility to change the saml plugin certificate to use our own certificate for signing the requests? 0 Denys Digtiar September 18, 2018 01:04 Hi Gabsi, If I understand you correctly, this should be possible via the Advanced section of the configuration. See Encryption section in the https://github.com/jenkinsci/saml-plugin/blob/master/doc/CONFIGURE.md 0 Pintokumar1608 Pintokumar1608 March 26, 2020 16:30 I configured the Jenkins in OKTA as mentioned in the docs, but there is a two different behavior for uesrs, for me and other 3 users. I m getting the "Page can't be located" and other users keep going back to okta home page. Only difference between them and myself is that I m having the Admin privileges to OKTA. We are also doing the copy n paste of the metadata file from the XML from OKTA and it is validating the xml. Any suggestions? 0 Please sign in to leave a comment.